CVE-2014-8733 Information

Description

Cloudera Manager 5.2.0 5.2.1 and 5.3.0 stores the LDAP bind password in plaintext in unspecified world-readable files under /etc/hadoop which allows local users to obtain this password.

Reference

http://www.cloudera.com/content/cloudera/en/documentation/security-bulletins/Security-Bulletin/csb_topic_2.html